Google Sues Chinese Cybercrime for Gemini AI Cyberattacks

Google has filed a landmark lawsuit against the “Outsider Enterprise,” a China-based cybercrime network. This marks the first time the tech giant has legally pursued threat actors for weaponizing its Gemini AI platform. The network used Gemini to conduct large-scale phishing campaigns targeting U.S. consumers.

The Outsider Enterprise operates as a sophisticated phishing-as-a-service (PhaaS) platform, coordinating operations through Telegram channels and distributing ready-made phishing kits to criminal affiliates.

The network enables criminals with minimal technical expertise to rapidly deploy convincing scam websites impersonating Google, YouTube, the U.S. Postal Service, financial institutions, state DMVs, toll agencies like New York’s E-ZPass, and other trusted brands using a library of over 290 prebuilt templates.

Gemini Weaponized for Cyberattacks

What distinguishes this operation from conventional phishing infrastructure is its deliberate abuse of AI. According to Google’s complaint, members of the Outsider Enterprise actively encouraged one another to use Gemini to generate custom code for phishing websites, which was then imported directly into the Outsider software suite and converted into live scam pages, General Counsel DeLaine said to The New York Times.

The Enterprise effectively industrialized fraud by reducing the technical barrier to near-zero, turning Google’s own generative AI into a malicious code factory.

The scope of damage is staggering:

• 2.5 million smishing messages were sent to Android users in just a two-week period in May 2026.
• 55,000 spam texts were flagged by Android users during that same two-week window, with more than two complaints per minute.
• 9,000+ fake websites and over 1 million fraudulent URLs tied to the network.
• Hundreds of thousands of victims were financially defrauded, with total losses estimated in the millions.

Google filed the complaint in the U.S. District Court for the Southern District of New York, seeking damages and injunctive relief under the Racketeer Influenced and Corrupt Organizations (RICO) Act and the Lanham Act.

The FBI’s Cyber Division is conducting parallel law enforcement actions, with Assistant Director Brett Leatherman acknowledging that criminals “increasingly use AI to make fraud more convincing and harder to detect.” Google is simultaneously working with AT&T, T-Mobile, and Verizon to intercept and block fraudulent messages at the carrier level before they reach end users.

Google is backing seven bipartisan bills targeting AI-driven scams, including the Stop SCAMS Act championed by Congressmen Brian Fitzpatrick and Josh Harder, which would create a national coordinated strategy uniting law enforcement, government agencies, and private industry to combat transnational cybercrime rings.

On the product side, Google’s AI-powered scam detection on Android actively flags suspicious conversations during calls, while built-in messaging defenses currently intercept more than 10 billion malicious messages monthly. The company has also disabled Gemini accounts and infrastructure confirmed to be linked to abuse of the model.

This lawsuit sets a significant legal precedent: AI platforms can and will be used as enforceable grounds for civil litigation when threat actors abuse generative models to scale criminal infrastructure, signaling a new front in the fight against AI-enabled cybercrime.

Disclaimer: HackersRadar reports on cybersecurity threats and incidents for informational and awareness purposes only. We do not engage in hacking activities, data exfiltration, or the hosting or distribution of stolen or leaked information. All content is based on publicly available sources.